diff --git a/.github/workflows/api-build-and-push-ghcr.yml b/.github/workflows/api-build-and-push-ghcr.yml index 9768c749f..8eaf30def 100644 --- a/.github/workflows/api-build-and-push-ghcr.yml +++ b/.github/workflows/api-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/arkime-build-and-push-ghcr.yml b/.github/workflows/arkime-build-and-push-ghcr.yml index b3e96c275..fa5644999 100644 --- a/.github/workflows/arkime-build-and-push-ghcr.yml +++ b/.github/workflows/arkime-build-and-push-ghcr.yml @@ -113,6 +113,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/dashboards-build-and-push-ghcr.yml b/.github/workflows/dashboards-build-and-push-ghcr.yml index dcc4b8420..6ced81fe3 100644 --- a/.github/workflows/dashboards-build-and-push-ghcr.yml +++ b/.github/workflows/dashboards-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/dashboards-helper-build-and-push-ghcr.yml b/.github/workflows/dashboards-helper-build-and-push-ghcr.yml index 5d49c5e04..b0f338def 100644 --- a/.github/workflows/dashboards-helper-build-and-push-ghcr.yml +++ b/.github/workflows/dashboards-helper-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/dirinit-build-and-push-ghcr.yml b/.github/workflows/dirinit-build-and-push-ghcr.yml index 5cf0424fd..df3933fac 100644 --- a/.github/workflows/dirinit-build-and-push-ghcr.yml +++ b/.github/workflows/dirinit-build-and-push-ghcr.yml @@ -101,6 +101,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/file-monitor-build-and-push-ghcr.yml b/.github/workflows/file-monitor-build-and-push-ghcr.yml index 4219cbf87..5d44883e1 100644 --- a/.github/workflows/file-monitor-build-and-push-ghcr.yml +++ b/.github/workflows/file-monitor-build-and-push-ghcr.yml @@ -108,6 +108,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/file-upload-build-and-push-ghcr.yml b/.github/workflows/file-upload-build-and-push-ghcr.yml index fb0a60067..454ab989e 100644 --- a/.github/workflows/file-upload-build-and-push-ghcr.yml +++ b/.github/workflows/file-upload-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/filebeat-build-and-push-ghcr.yml b/.github/workflows/filebeat-build-and-push-ghcr.yml index 47759d34b..da2f0536b 100644 --- a/.github/workflows/filebeat-build-and-push-ghcr.yml +++ b/.github/workflows/filebeat-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/freq-build-and-push-ghcr.yml b/.github/workflows/freq-build-and-push-ghcr.yml index 4c359f714..3862e5f1f 100644 --- a/.github/workflows/freq-build-and-push-ghcr.yml +++ b/.github/workflows/freq-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/hedgehog-iso-build-docker-wrap-push-ghcr.yml b/.github/workflows/hedgehog-iso-build-docker-wrap-push-ghcr.yml index 50a19f596..4f7f243f0 100644 --- a/.github/workflows/hedgehog-iso-build-docker-wrap-push-ghcr.yml +++ b/.github/workflows/hedgehog-iso-build-docker-wrap-push-ghcr.yml @@ -142,6 +142,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'fs' scan-ref: './hedgehog-iso' diff --git a/.github/workflows/htadmin-build-and-push-ghcr.yml b/.github/workflows/htadmin-build-and-push-ghcr.yml index 0bf33fec7..6a7a4099f 100644 --- a/.github/workflows/htadmin-build-and-push-ghcr.yml +++ b/.github/workflows/htadmin-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/logstash-build-and-push-ghcr.yml b/.github/workflows/logstash-build-and-push-ghcr.yml index e835829a6..1bf286fa7 100644 --- a/.github/workflows/logstash-build-and-push-ghcr.yml +++ b/.github/workflows/logstash-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/malcolm-iso-build-docker-wrap-push-ghcr.yml b/.github/workflows/malcolm-iso-build-docker-wrap-push-ghcr.yml index cb5e69eb1..bf5045aeb 100644 --- a/.github/workflows/malcolm-iso-build-docker-wrap-push-ghcr.yml +++ b/.github/workflows/malcolm-iso-build-docker-wrap-push-ghcr.yml @@ -148,6 +148,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'fs' scan-ref: './malcolm-iso' diff --git a/.github/workflows/netbox-build-and-push-ghcr.yml b/.github/workflows/netbox-build-and-push-ghcr.yml index 8a9e9c922..857015d30 100644 --- a/.github/workflows/netbox-build-and-push-ghcr.yml +++ b/.github/workflows/netbox-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/nginx-build-and-push-ghcr.yml b/.github/workflows/nginx-build-and-push-ghcr.yml index 6758e023e..8221bd513 100644 --- a/.github/workflows/nginx-build-and-push-ghcr.yml +++ b/.github/workflows/nginx-build-and-push-ghcr.yml @@ -118,6 +118,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/opensearch-build-and-push-ghcr.yml b/.github/workflows/opensearch-build-and-push-ghcr.yml index 3253ac8ae..1bc3db595 100644 --- a/.github/workflows/opensearch-build-and-push-ghcr.yml +++ b/.github/workflows/opensearch-build-and-push-ghcr.yml @@ -110,6 +110,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/pcap-capture-build-and-push-ghcr.yml b/.github/workflows/pcap-capture-build-and-push-ghcr.yml index 6e5ce485d..c01f21f4e 100644 --- a/.github/workflows/pcap-capture-build-and-push-ghcr.yml +++ b/.github/workflows/pcap-capture-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/pcap-monitor-build-and-push-ghcr.yml b/.github/workflows/pcap-monitor-build-and-push-ghcr.yml index 24a54ccbe..2352fb82d 100644 --- a/.github/workflows/pcap-monitor-build-and-push-ghcr.yml +++ b/.github/workflows/pcap-monitor-build-and-push-ghcr.yml @@ -111,6 +111,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/postgresql-build-and-push-ghcr.yml b/.github/workflows/postgresql-build-and-push-ghcr.yml index d10e377d0..951170880 100644 --- a/.github/workflows/postgresql-build-and-push-ghcr.yml +++ b/.github/workflows/postgresql-build-and-push-ghcr.yml @@ -110,6 +110,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/redis-build-and-push-ghcr.yml b/.github/workflows/redis-build-and-push-ghcr.yml index 060a5c056..da0706bea 100644 --- a/.github/workflows/redis-build-and-push-ghcr.yml +++ b/.github/workflows/redis-build-and-push-ghcr.yml @@ -110,6 +110,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/suricata-build-and-push-ghcr.yml b/.github/workflows/suricata-build-and-push-ghcr.yml index 01b83f663..36d9adca5 100644 --- a/.github/workflows/suricata-build-and-push-ghcr.yml +++ b/.github/workflows/suricata-build-and-push-ghcr.yml @@ -110,6 +110,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln' diff --git a/.github/workflows/zeek-build-and-push-ghcr.yml b/.github/workflows/zeek-build-and-push-ghcr.yml index 64126d69c..882b77623 100644 --- a/.github/workflows/zeek-build-and-push-ghcr.yml +++ b/.github/workflows/zeek-build-and-push-ghcr.yml @@ -112,6 +112,8 @@ jobs: if: ${{ matrix.platform == 'linux/amd64' }} id: trivy-scan uses: aquasecurity/trivy-action@0.28.0 + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' scanners: 'vuln'